1 of 66

The Multichain for Auditors

Ali Atiia

Founder yAcademy|yAudit

@AliAtiia_

yAcademy

https://yacademy.dev/fellowships

2 of 66

Prelude

3 of 66

An aspiring blockchain auditor wonders: where should invest my time?

4 of 66

An aspiring blockchain auditor wonders: where should invest my time?

Programming languages: generic, DSLs, restricted X ∊ {Rust, Haskell, Java, Golang, ..}
Domains: DeFi, Infra, ZK, …
Blockchains: sharded, monolithic, shared-security, sovereign, ..

5 of 66

An aspiring blockchain auditor wonders: where should invest my time?

Programming languages: generic, DSLs, restricted X ∊ {Rust, Haskell, Java, Golang, ..}
Domains: DeFi, Infra, ZK, …
Blockchains: sharded, monolithic, shared-security, sovereign, ..

Go where the devs are

Go where the devs are going

But that’s the hard way of going about it, the smart way to simply look at where the devs are going .. not only only where they are now, but where they might go next in large numbers
So the difference between low and high iq is that the former is focusing on the status quo, while the latter keeps in touch with the trend, and tries to get ahead start by _predicting_ where the devs will go next
Of course devs are not jumping from one place to another frequently, but it happens gradually and then all at once
Some paradigms and domains are sticky and will continue to grow, and therefore there will always be demand for auditors there
But i think it’s good to also try and predict where they will go next, potentially gradually, but it’s also possible that a sharp jump happens and you find an explosion of new codebases in a new area within a short period of time
And so if you get ahead start, you will be there to catch all that demand

6 of 66

An aspiring blockchain auditor wonders: where should invest my time?

Programming languages: generic, DSLs, restricted X ∊ {Rust, Haskell, Java, Golang, ..}
Domains: DeFi, Infra, ZK, …
Blockchains: sharded, monolithic, shared-security, sovereign, ..

Where are develops going?

7 of 66

So where do developers go?

I have a theory…

8 of 66

The capital of a software developer is her time and skill. When deploying this capital, she needs to optimize for:

(1) efficiency: minimum time to get her software out into the wild.�(2) effectiveness: maximum reach and durability of her software.

9 of 66

Problem statement: what is the overarching domain-, context- and scale-independent law that has thus far held over the past 6–7 decades of software evolution? What evolutionary adaptations have emerged in order to maximize the efficiency and effectiveness constraints of software development?

10 of 66

Solution Approach: apply the universal law of the outsourcing of concerns thru abstraction to blockchain development. What concerns can be outsourced to blockchain networks which could not have otherwise been abstracted away?

Problem statement: what is the overarching domain-, context- and scale-independent law that has thus far held over the past 6–7 decades of software evolution? What evolutionary adaptations have emerged in order to maximize the efficiency and effectiveness constraints of software developers?

11 of 66

Solution Approach: apply the universal law of the outsourcing of concerns thru abstraction to blockchain development. What concerns can be outsourced to blockchain networks which could not have otherwise been abstracted away?

Problem statement: what is the overarching domain-, context- and scale-independent law that has thus far held over the past 6–7 decades of software evolution? What evolutionary adaptations have emerged in order to maximize the efficiency and effectiveness constraints of software developers?

12 of 66

Solution Approach: apply the universal law of outsourcing of concerns thru abstraction to blockchain development. What concerns can be outsourced to blockchain networks which could not have otherwise been abstracted away?

Problem statement: what is the overarching domain-, context- and scale-independent law that has thus far held over the past 6–7 decades of software evolution? What evolutionary adaptations have emerged in order to maximize the efficiency and effectiveness constraints of software developers?

Design: developers will outsource their trust concerns to a durably reliable and secure API provider, one that most satisfies the “hook-it-and-forget-it” principle.

13 of 66

Solution Approach: apply the universal law of outsourcing of concerns thru abstraction to blockchain development. What concerns can be outsourced to blockchain networks which could not have otherwise been abstracted away?

Problem statement: what is the overarching domain-, context- and scale-independent law that has thus far held over the past 6–7 decades of software evolution? What evolutionary adaptations have emerged in order to maximize the efficiency and effectiveness constraints of software developers?

Design: developers will outsource their trust concerns to a durably reliable and secure API provider, one that most satisfies the “hook-it-and-forget-it” principle.

Implementation: sharded blockchains have the most viable path towards durable security.

14 of 66

Solution Approach: apply the universal law of outsourcing of concerns thru abstraction to blockchain development. What concerns can be outsourced to blockchain networks which could not have otherwise been abstracted away?

Problem statement: what is the overarching domain-, context- and scale-independent law that has thus far held over the past 6–7 decades of software evolution? What evolutionary adaptations have emerged in order to maximize the efficiency and effectiveness constraints of software developers?

Design: developers will outsource their trust concerns to a durably reliable and secure API provider, one that most satisfies the “hook-it-and-forget-it” principle.

Implementation: sharded blockchains have the most viable path towards durable security

Falsification: If monolithic or app-specific roll-your-own-security chains proliferate, the our thesis above is wrong, and vice versa.

15 of 66

Solution Approach: apply the universal law of outsourcing of concerns thru abstraction to blockchain development. What concerns can be outsourced to blockchain networks which could not have otherwise been abstracted away?

Problem statement: what is the overarching domain-, context- and scale-independent law that has thus far held over the past 6–7 decades of software evolution? What evolutionary adaptations have emerged in order to maximize the efficiency and effectiveness constraints of software developers?

Design: outsource your trust concerns to a durably reliable and secure API provider, one that most satisfies the “hook-it-and-forget-it” principle.

Implementation: sharded blockchains have the most viable path towards durable security

Falsification: if monolithic or app-specific roll-your-own-security chains proliferate, the thesis presented in this article would be invalidated, and vice versa.

�Extensions: the law of abstraction of concerns will continue to shape software evolution into the future.

We can observe glimpses of its future effects through the emerging new layers of abstractions (top of the stack):

IaaS, PaaS, ..
low-, no-, and visual-programming.
AI-assisted programming�

16 of 66

Thesis summary:

Concerns want to be outsourced
Trust is *the* major concern and raison d'être of blockchains
Sharded blockchains are most likely to provide durable security
That’s where the devs are most likely to go
Therefore that’s where you should invest your time as an auditor

17 of 66

In short ..

❌ Top-down “hard work”: dig deep into whitepapers, blog posts, and github codebases for every project

✅ Bottom-up “smart work”: identify what makes an ecosystem viable, then skim ahead and see if you can find that thing in each project

18 of 66

In short ..

❌ Top-down “hard work”: dig deep into whitepapers, blog posts, and github codebases for every project

✅ Bottom-up “smart work”: identify what makes an ecosystem viable, then skim ahead and see if you can find that thing in each project

A path to durable security

19 of 66

Blockchain Tech Recap

20 of 66

The 3 Major Milestones

Nakamoto Consensus

EVM

Rollup

2009

2015

2019

21 of 66

Paradigm shift in human coordination
App-specific: coin transfer, “money”
State machine is not fit for building layers of abstraction on top
Writing Script scripts ( ) is like trying to do construction work with a swiss army knife

Nakamoto Consensus

EVM

Rollup

2009

2015

2019

Bitcoin introduced a paradigm shift in human coordination: it is possible to have a secure, trustless and disintermediated coordination
It was app-specific: the only non-clunky thing you can do with it is send and receive “coins”, not actual “coins” but something called utxo, but i won’t go into that
To ensure determinism across different architectures on which nodes run, each transaction is specified in unambiguous platform- and implementation-independent instructions that are guaranteed to to yield the same results across all nodes .. so no floating point arithmetic etc. And this is something that all future blockchains also followed
A higher level language that translates into these low-level instructions, or opcodes, could in principle be built, a compiler basically, if not for the fact that these instructions of the bitcoin VM are not generic enough, it’s a mish mash of hardcoded intentions that are not useful for fabricating generic constructs

22 of 66

Paradigm shift in human coordination
App-specific: coin transfer, “money”
State machine is not fit for building layers of abstraction on top
Writing Script scripts ( ) is like trying to do construction work with a swiss army knife

Nakamoto Consensus

EVM

Rollup

2009

2015

2019

Think of it like: here is a stick, a hammer, a duct tape .. etc etc….use them to fashion your tool of interest, tool here being some higher level intent, say a defi vault or an AMM….
As you can imagine that would be very messy, and some people tried, and reached a dead end .. you can’t build higher-level intents on bitcoin’s virtual machine, full stop
If you hear bitcoiner devs talking gibberish about “utxo’s, witnesses, covenants” etc .. you may get the impression that “oh this so advanced that only wizards understand it” .. the reality is the the OPPOSITE of that .. Bitcoin Script is one of the most amateurish pieces of SDKs ever built .. and Im talking about “undergrad course project” level of quality and sophistication .. i’m talking from a software engineering perspective.
BUT, this takes nothing from the genius of Nakamoto and his legacy .. and it’s not their fault Bitcoin’s runtime never improved, that’s the fault of the people that captured the codebase and the culture that surrounds it
ANYWHO

23 of 66

Nakamoto Consensus

EVM

Rollup

2009

2015

2019

Lots of Bitcoin clones 2011 ~ 2017 ish … the birth of the “alt” paradigm:

Sidekick……………………………………………………….. Litecoin
SaaS-y………………………………………………………….. Dash
Private……………..………………………………………….. Zcash/Monero
Cheap .................................................................. Bitcoin Cash
Fun ………………………………………………………………. Doge

24 of 66

Nakamoto Consensus

EVM

Rollup

2009

2015

2019

Auditing:

Lots of bugs in Bitcoin codebase in early years
Stakes weren’t high enough yet, so no biggy
Not much built with “Script”, unsurprisingly, so not much auditing demand -still the case today and (imo) forever

25 of 66

Nakamoto Consensus

EVM

Rollup

2009

2015

2019

Proper virtual machine atop which higher-level langs can compile to
Bad design choices recognized immediately
Improvements continue to this day, some choices are stuck probably forever

26 of 66

Proper virtual machine atop which higher-level langs can compile to
Bad design choices recognized immediately
Improvements continue to this day, some choices are stuck probably forever

Nakamoto Consensus

EVM

Rollup

2009

2015

2019

27 of 66

-Auditing:

dApps started trickling immediately after launch: prediction markets, ENS, DAOs, ..
2017: the ERC20 explosion (ICOs)
Still not a massive demand for auditing, till …
DeFi 2019-2020 .. auditing demands explodes

Nakamoto Consensus

EVM

Rollup

2009

2015

2019

28 of 66

Nakamoto Consensus

EVM

Rollup

2009

2015

2019

2017: ICO wave spurred an explosion of chains

29 of 66

Nakamoto Consensus

EVM

Rollup

2009

2015

2019

2017: ICO wave spurred an explosion of chains

� “Ethereum killing” EVM clones…………………………..……….…… NEO anyone?

30 of 66

Nakamoto Consensus

EVM

Rollup

2009

2015

2019

2017: ICO wave spurred an explosion of chains

� “Ethereum killing” EVM clones…………………………..……….…… NEO anyone?

Shiny new consensus algo ................................................... Ava, Algorand, Hedera

Around the same time there was the consensus algo narrative:

The typical script of whitepapers, blogs, and podcasts in 2017-2018 goes something like this: "Ethereum is good, but did you see how Crypto kitties clogged the network? There’s gotta be a better way. Here’ a flayer for my ICO where I prove using powerpoint engineering that my chain is better"

To researchers and developers, this was hilarious because the consensus algorithm is not the bottleneck of scalability. How a distributed network comes to a consensus is not the issue. The amount of resources a node has to spend is the issue. The higher the requirement to follow and verify a chain, the less nodes there are, which means less security and censorship resistance guarantees.

In Avalanche you could have “subnets”, ie sidechains, and they spent a significant amount of money spreading misinformation about their security…but of course the main chain provides 0 security to any of them: the only relationship between subnet and main chain is administrative…self-selecting subsets of validators can validate these subnets but there is absolutely no notion of validity or fraud proofs or slashing or anything .. so it’s mostly a nothing-burger, and because academic jargon is repurposed for misinformation that makes is a malicious project imo

31 of 66

Nakamoto Consensus

EVM

Rollup

2009

2015

2019

2017: ICO wave spurred an explosion of chains

� “Ethereum killing” EVM clones…………………………..……….…… NEO anyone?

Shiny new consensus algo ................................................... Ava, Algorand, Hedera

“Let’s get weird”..................................................................................... Rchain lol

32 of 66

Nakamoto Consensus

EVM

Rollup

2009

2015

2019

2017: ICO wave spurred an explosion of chains

� “Ethereum killing” EVM clones…………………………..……….…… NEO anyone?

Shiny new consensus algo ................................................... Ava, Algorand, Hedera

“Let’s get weird”..................................................................................... Rchain lol

33 of 66

Nakamoto Consensus

EVM

Rollup

2009

2015

2019

2017: ICO wave spurred an explosion of chains

� “Ethereum killing” EVM clones…………………………..……….…… NEO anyone?

Shiny new consensus algo ................................................... Ava, Algorand, Hedera

“Let’s get weird”..................................................................................... Rchain lol

Formal verification snake oil.................................................... Cardano, Zilliqa, Tezos

Then there is the formal verification snake oil
This marketing narrative capitalizes on the constant reports of hacks in Ethereum.. starting with The DAO
I talked about this previously but briefly:

Formal verification is not a panacea .. your spec could itself be buggy, and you may miss some invariants
Formal-verification-friendly languages (functional programming) are extremely developer unfriendly….like Michelson in Tezos or Haskell in Cardano
We would be safer driving around in tanks, no one will die from car accidents, but we don’t do that for obvious reasons
dApp devs just wanna get sh!t done, and history has shown that the imperative paradigm is the most suitable for the average human brain
Sure, if you are writing a script embedded in a heart pacer or in an airplane auto-pilot, maybe it’s worth it using these languages
Another point is that: you can also formally verify other source code, the eth2 deposit contract for example was formally verified to death
So it’s not like you can’t harness formal verification unless you use these unfriendly languages

34 of 66

Nakamoto Consensus

EVM

Rollup

2009

2015

2019

2017: ICO wave spurred an explosion of chains

� “Ethereum killing” EVM clones…………………………..……….…… NEO anyone?

Shiny new consensus algo ................................................... Ava, Algorand, Hedera

“Let’s get weird”..................................................................................... Rchain lol

Formal verification snake oil.................................................... Cardano, Zilliqa, Tezos

35 of 66

Nakamoto Consensus

EVM

Rollup

2009

2015

2019

2017: ICO wave spurred an explosion of chains

� “Ethereum killing” EVM clones…………………………..……….…… NEO anyone?

Shiny new consensus algo ................................................... Ava, Algorand, Hedera

“Let’s get weird”..................................................................................... Rchain lol

Formal verification snake oil.................................................... Cardano, Zilliqa, Tezos

36 of 66

Haskell

PL Popularity

Marketing

Reality

37 of 66

38 of 66

39 of 66

Nakamoto Consensus

EVM

Rollup

2009

2015

2019

2017: ICO wave spurred an explosion of chains

� “Ethereum killing” EVM clones…………………………..……….…… NEO anyone?

Shiny new consensus algo ................................................... Ava, Algorand, Hedera

“Let’s get weird”..................................................................................... Rchain lol

Formal verification snake oil.................................................... Cardano, Zilliqa, Tezos

40 of 66

Nakamoto Consensus

EVM

Rollup

2009

2015

2019

2017: ICO wave spurred an explosion of chains

� “Ethereum killing” EVM clones…………………………..……….…… NEO anyone?

Shiny new consensus algo ................................................... Ava, Algorand, Hedera

“Let’s get weird”..................................................................................... Rchain lol

Formal verification snake oil.................................................... Cardano, Zilliqa, Tezos

UTXO cult………………………………………………………………………………....……… Cardano, Nervos

41 of 66

Nakamoto Consensus

EVM

Rollup

2009

2015

2019

2017: ICO wave spurred an explosion of chains

� “Ethereum killing” EVM clones…………………………..……….…… NEO anyone?

Shiny new consensus algo ................................................... Ava, Algorand, Hedera

“Let’s get weird”..................................................................................... Rchain lol

Formal verification snake oil.................................................... Cardano, Zilliqa, Tezos

UTXO cult………………………………………………………………………………....……… Cardano, Nervos

42 of 66

43 of 66

Nakamoto Consensus

EVM

Rollup

2009

2015

2019

2017: ICO wave spurred an explosion of chains

� “Ethereum killing” EVM clones…………………………..……….…… NEO anyone?

Shiny new consensus algo ................................................... Ava, Algorand, Hedera

“Let’s get weird”..................................................................................... Rchain lol

Formal verification snake oil.................................................... Cardano, Zilliqa, Tezos

UTXO cult………………………………………………………………………………....……… Cardano, Nervos

“Sidechain-ing is a feature not a bug”……………………... Cosmos

44 of 66

Nakamoto Consensus

EVM

Rollup

2009

2015

2019

2017: ICO wave spurred an explosion of chains

� “Ethereum killing” EVM clones…………………………..……….…… NEO anyone?

Shiny new consensus algo ................................................... Ava, Algorand, Hedera

“Let’s get weird”..................................................................................... Rchain lol

Formal verification snake oil.................................................... Cardano, Zilliqa, Tezos

UTXO cult………………………………………………………………………………....……… Cardano, Nervos

“Sidechain-ing is a feature not a bug”……………………... Cosmos

45 of 66

Nakamoto Consensus

EVM

Rollup

2009

2015

2019

2017: ICO wave spurred an explosion of chains

� “Ethereum killing” EVM clones…………………………..……….…… NEO anyone?

Shiny new consensus algo ................................................... Ava, Algorand, Hedera

“Let’s get weird”..................................................................................... Rchain lol

Formal verification snake oil.................................................... Cardano, Zilliqa, Tezos

UTXO cult………………………………………………………………………………....……… Cardano, Nervos

“Sidechain-ing is a feature not a bug”……………………... Cosmos

“Bring back the SaaS” ………………………………………………………….... Solana, Dfinity

46 of 66

Nakamoto Consensus

EVM

Rollup

2009

2015

2019

2017: ICO wave spurred an explosion of chains

� “Ethereum killing” EVM clones…………………………..……….…… NEO anyone?

Shiny new consensus algo ................................................... Ava, Algorand, Hedera

“Let’s get weird”..................................................................................... Rchain lol

Formal verification snake oil.................................................... Cardano, Zilliqa, Tezos

UTXO cult………………………………………………………………………………....……… Cardano, Nervos

“Sidechain-ing is a feature not a bug”……………………... Cosmos

“Bring back the SaaS” ………………………………………………………….... Solana, Dfinity

47 of 66

Nakamoto Consensus

EVM

Rollup

2009

2015

2019

2017: ICO wave spurred an explosion of chains

� “Ethereum killing” EVM clones…………………………..……….…… NEO anyone?

Shiny new consensus algo ................................................... Ava, Algorand, Hedera

“Let’s get weird”..................................................................................... Rchain lol

Formal verification snake oil.................................................... Cardano, Zilliqa, Tezos

UTXO cult………………………………………………………………………………....……… Cardano, Nervos

“Sidechain-ing is a feature not a bug”……………………... Cosmos

“Bring back the SaaS” ………………………………………………………….... Solana, Dfinity

48 of 66

Nakamoto Consensus

EVM

Rollup

2009

2015

2019

2017: ICO wave spurred an explosion of chains

� “Ethereum killing” EVM clones…………………………..……….…… NEO anyone?

Shiny new consensus algo ................................................... Ava, Algorand, Hedera

“Let’s get weird”..................................................................................... Rchain lol

Formal verification snake oil.................................................... Cardano, Zilliqa, Tezos

UTXO cult………………………………………………………………………………....……… Cardano, Nervos

“Sidechain-ing is a feature not a bug”……………………... Cosmos

“Bring back the SaaS” ………………………………………………………….... Solana, Dfinity

“We can do sharding better”....................................................... Polkadot, NEAR

49 of 66

Nakamoto Consensus

EVM

Rollup

2009

2015

2019

2017: ICO wave spurred an explosion of chains

� “Ethereum killing” EVM clones…………………………..……….…… NEO anyone?

Shiny new consensus algo ................................................... Ava, Algorand, Hedera

“Let’s get weird”..................................................................................... Rchain lol

Formal verification snake oil.................................................... Cardano, Zilliqa, Tezos

UTXO cult………………………………………………………………………………....……… Cardano, Nervos

“Sidechain-ing is a feature not a bug”……………………... Cosmos

“Bring back the SaaS” ………………………………………………………….... Solana, Dfinity

“We can do sharding better”....................................................... Polkadot, NEAR

50 of 66

Nakamoto Consensus

EVM

Rollup

2009

2015

2019

2017: ICO wave spurred an explosion of chains

� “Ethereum killing” EVM clones…………………………..……….…… NEO anyone?

Shiny new consensus algo ................................................... Ava, Algorand, Hedera

“Let’s get weird”..................................................................................... Rchain lol

Formal verification snake oil.................................................... Cardano, Zilliqa, Tezos

UTXO cult………………………………………………………………………………....……… Cardano, Nervos

“Sidechain-ing is a feature not a bug”……………………... Cosmos

“Bring back the SaaS” ………………………………………………………….... Solana, Dfinity

“We can do sharding better”....................................................... Polkadot, NEAR

51 of 66

Nakamoto Consensus

EVM

Rollup

2009

2015

2019

2017: ICO wave spurred an explosion of chains

� “Ethereum killing” EVM clones…………………………..……….…… NEO anyone?

Shiny new consensus algo ................................................... Ava, Algorand, Hedera

“Let’s get weird”..................................................................................... Rchain lol

Formal verification snake oil.................................................... Cardano, Zilliqa, Tezos

UTXO cult………………………………………………………………………………....……… Cardano, Nervos

“Sidechain-ing is a feature not a bug”……………………... Cosmos

“Bring back the SaaS” ………………………………………………………….... Solana, Dfinity

“We can do sharding better”....................................................... Polkadot, NEAR

52 of 66

Nakamoto Consensus

EVM

Rollup

2009

2015

2019

2017: ICO wave spurred an explosion of chains

� “Ethereum killing” EVM clones…………………………..……….…… NEO anyone?

Shiny new consensus algo ................................................... Ava, Algorand, Hedera

“Let’s get weird”..................................................................................... Rchain lol

Formal verification snake oil.................................................... Cardano, Zilliqa, Tezos

UTXO cult………………………………………………………………………………....……… Cardano, Nervos

“Sidechain-ing is a feature not a bug”……………………... Cosmos

“Bring back the SaaS” ………………………………………………………….... Solana, Dfinity

“We can do sharding better”....................................................... Polkadot, NEAR

53 of 66

Nakamoto Consensus

EVM

Rollup

2009

2015

2019

2017: ICO wave spurred an explosion of chains

� “Ethereum killing” EVM clones…………………………..……….…… NEO anyone?

Shiny new consensus algo ................................................... Ava, Algorand, Hedera

“Let’s get weird”..................................................................................... Rchain lol

Formal verification snake oil.................................................... Cardano, Zilliqa, Tezos

UTXO cult………………………………………………………………………………....……… Cardano, Nervos

“Sidechain-ing is a feature not a bug”……………………... Cosmos

“Bring back the SaaS” ………………………………………………………….... Solana, Dfinity

“We can do sharding better”....................................................... Polkadot, NEAR

54 of 66

Nakamoto Consensus

EVM

Rollup

2009

2015

2019

2017: ICO wave spurred an explosion of chains

� “Ethereum killing” EVM clones…………………………..……….…… NEO anyone?

Shiny new consensus algo ................................................... Ava, Algorand, Hedera

“Let’s get weird”..................................................................................... Rchain lol

Formal verification snake oil.................................................... Cardano, Zilliqa, Tezos

UTXO cult………………………………………………………………………………....……… Cardano, Nervos

“Sidechain-ing is a feature not a bug”……………………... Cosmos

“Bring back the SaaS” ………………………………………………………….... Solana, Dfinity

“We can do sharding better”....................................................... Polkadot, NEAR

55 of 66

Auditing 2017-2022:

EVM and clones: most of the demand is here
New runtimes with potential: mainly Rust and Rust-inspired DSLs
You can safely ignore DX-unfriendly runtimes, such as those tailored for “muh formal verification” … there is ~zero demand for them.

Nakamoto Consensus

EVM

Rollup

2009

2015

2019

So, for the EVM and its clones obviously you’re familiar with what you need there to begin auditing
And so if you’re already auditing for Ethereum you can audit for others as well .. with a few caveats regarding bugs that may relate to consensus, like re-orgability in different EVM clones
And then you have a few other VMs, which according to the law that we defined earlier, the law of durable security, you can safely ignore .. except for those that have a viable path to durable security
Those as we said are sharded chains, or sharding-in-progres chains I should say, and for those you mainly need to learn Rust .. that would be the main thing to learn there
Other ecosystems are either dead, or simply non-viable for other obvious reasons like developer-unfriendly tooling that is very very unlikely to gain traction. So you can safely assume there won’t be any flourishing supply of contracts in need of auditing that are written in haskell or michelson

56 of 66

2020 - 2021:

Interactive fraud proofs win
ZK Rollups surprise everyone

Nakamoto Consensus

EVM

Rollup

2009

2015

2019

We now come to the last major milestone in blockchain history: rollups
They didn’t happen overnight…it took some “1 step-forward 2 steps backward” kind of progress .. esp for optimistic rollups
But, briefly, we now know that:

Interactive fraud-proofs is the way to go for optimistic rollups. This is pioneered by Arbitrum, and Optimism pivoted to it as well after spending years trying the non-interactive variant and insisting it the way to go
ZKRU started app-specific, but became general-compute very quickly, to the surprise of everyone
This is due in part to advances in the SNARKing machinery that made them very practical, like the PLONK proving system, which build upon ideas from previous ones
Briefly, a ZK proving systems is a way we take arbitrary logic, compile it to polynomials, and then stitch those polynomials together such that we can get a single cheaply-verified proof of the integrity of the execution they represent
We will have more to say about this in our upcoming zk fellowship, so stay tuned for that

57 of 66

Nakamoto Consensus

EVM

Rollup

2009

2015

2019

2020 - 2021:

Interactive fraud proofs win
ZK Rollups surprise everyone

58 of 66

Auditing:

Smart contracts:

nothing new to learn in terms of source code
L1 contracts:

Fraud proof machinery, deposit/withdraw, …
ZKP verifier contracts

Infra:

ORU: prevailing paradigm of “sandwiching the EVM” results in minimal diff with go-ethereum
ZKRU: extremely high demand to audit ZK circuits (prover)

Nakamoto Consensus

EVM

Rollup

2009

2015

2019

59 of 66

Auditing:

Smart contracts:

nothing new to learn in terms of source code
L1 contracts:

Fraud proof machinery, deposit/withdraw, …
ZKP verifier contracts

Infra:

ORU: prevailing paradigm of “sandwiching the EVM” results in minimal diff with go-ethereum
ZKRU: extremely high demand to audit ZK circuits (prover)

Nakamoto Consensus

EVM

Rollup

2009

2015

2019

Solidity/Cairo

Rust/Circom

60 of 66

Auditing ZK:

Mina ecosystem (a recursive SNARK-based blockchain)
ZK dApps (voting, gaming, rate-limiting)

This is buzzing and may explode any minute
Mostly in Circom now

ZK Rollups

Nakamoto Consensus

EVM

Rollup

2009

2015

2019

61 of 66

Auditing ZK:

Mina ecosystem (a recursive SNARK-based blockchain)
ZK dApps (voting, gaming, rate-limiting)

This is buzzing and may explode any minute

ZK Rollups

Nakamoto Consensus

EVM

Rollup

2009

2015

2019

Probability

Number Theory

Abstract Algebra

Cryptography

Complexity

Theory

62 of 66

Auditing ZK:

Mina ecosystem (a recursive SNARK-based blockchain)
ZK dApps (voting, gaming, rate-limiting)

This is buzzing and may explode any minute

ZK Rollups

Nakamoto Consensus

EVM

Rollup

2009

2015

2019

Probability

Number Theory

Abstract Algebra

Cryptography

Complexity

Theory

63 of 66

Auditing the Multichain�(tooling)

EVM

Rust

ZK

Ethereum

Geth-fork chains

Rollups sandwiches

Rollup smart contracts

WASM smart contracts

Infra

Smart-contract verifiers

Infra (provers)

zk-dApps

Circom

64 of 66

Auditing the Multichain�(ecosystems)

Ethereum

Rollups

Polka/NEAR

Based on “Durable Security” Thesis

65 of 66

66 of 66

Thanks